with synology LDAP Server, this almost works out of the box…
I’ve been searching for a solution with Synology Directory Server, and I finally got it so work…
now I’m putting details and pieces together, if anyone is interested int this…
SETTINGS
LDAP / AD integration
Server
ldaps://192.168.20.10 636
nextcloud@gaul.lan
P@ssw0rd
dc=gaul,dc=lan
Advanced
Connection Settings Configuration Active CHECK
Turn off SSL certificate validation. CHECK
Directory Settings
2nd User Display Name Field samaccountname
Base User Tree dc=gaul,dc=lan
Base Group Tree dc=gaul,dc=lan
Group-Member association member (AD)
Special Attributes
Email Field userPrincipalname
Users
Edit LDAP Query
(objectclass=*) Only from these groups: G_nextcloud
Login Attributes
Edit LDAP Query
(&(|(objectclass=person)(objectclass=user))(|(samaccountname=%uid)(|(mailPrimaryAddress=%uid)(mail=%uid))))
Groups
Edit LDAP Query
(&(|(objectclass=group))(|(cn=G_Nextcloud)))